découvrez comment configurer facilement une connexion bureau à distance (rdp) sur debian 13 grâce à xrdp. suivez notre guide complet étape par étape pour accéder à votre bureau debian à distance en toute sécurité.

Complete guide for a Remote Desktop Connection (RDP) under Debian 13 with xRDP

by

Understanding the RDP Protocol and the Importance of xRDP on Debian 13

The Remote Desktop Protocol (RDP) is a standard developed by Microsoft to enable access to a computer’s graphical interface remotely. It is widely used in professional environments to facilitate machine administration without being physically present. On Debian 13, an operating system known for its stability and robustness, integrating an RDP service requires some adaptation. This is where xRDP comes in, an open-source implementation of the RDP protocol that allows for reliable remote connections from various platforms, including Windows, macOS, and even Android. Deployed on Debian 13 Trixie, xRDP opens the door to numerous possibilities for remote administration and use. Unlike other solutions such as TigerVNC or RealVNC, xRDP offers native compatibility with Windows Remote Desktop clients, a significant advantage in a world that is often heterogeneous where multiple systems coexist. It is essential to note that for the xRDP server to function correctly, it requires a graphical environment installed on Debian. Popular environments such as GNOME or KDE can be used, but Debian 13 offers XFCE by default, a lightweight and efficient desktop environment perfectly suited for remote access. xRDP is an open-source RDP server for Linux.It allows remote connections from any machine equipped with an RDP client.

The RDP protocol facilitates remote control of the graphical environment. It is compatible with various Linux desktop environments, including GNOME, KDE, and XFCE. It promotes interoperability between Windows and Linux for system administrators. For professionals and enthusiasts looking to learn or deepen their understanding of remote access solutions under Linux, xRDP is an essential tool. It embodies an open and convergent approach, both within the free software world and in the world of hybrid infrastructures.Installing xRDP on Debian 13: Key Steps and Essential Prerequisites

Installing xRDP on Debian 13 requires a few essential prerequisites to ensure the remote server functions correctly. First, you absolutely must have an active graphical environment. Debian 13, with its default XFCE desktop, offers a lightweight yet powerful environment. For those who don’t yet have a graphical environment, installation can be done quickly using the following commands: `sudo apt update && sudo apt upgrade -y` – to update existing repositories and packages. sudo apt install xfce4 xfce4-goodies xorg dbus-x11 x11-xserver-utils -y – to install XFCE and some necessary tools. Once the graphical desktop is set up, installing the xRDP package is simple:

  • sudo apt install xrdp -y Verifying that the service is running is crucial. To do this, simply type:
  • sudo systemctl status xrdp
  • It’s common to encounter an error related to SSL permissions initially. This issue is resolved by adding the xrdp user to the ssl-cert group
  • via:

sudo adduser xrdp ssl-cert

  1. sudo systemctl restart xrdp Finally, to ensure the server starts automatically after a machine reboot:
  2. sudo systemctl enable xrdp

Make sure port 3389 is free; if not, adjust the configuration to avoid conflicts. If a firewall is enabled, open port 3389 with the command:

  1. `sudo ufw allow 3389`

  1. Monitor services that might be using this port using:

`ss -tulpn | grep 3389` This quick procedure is aimed at both network specialists and enthusiastic users who want to master remote desktop access on Debian. For those familiar with Linux commands, these steps are an excellent opportunity to learn best practices for service management and security.

  1. https://www.youtube.com/watch?v=43VspvrHcms
  2. Configuring and Securing xRDP on Debian 13: Practical Optimization Tips

Once the xRDP server is set up, proper configuration is crucial to ensure not only functionality but also security. The main file

  1. /etc/xrdp/xrdp.ini
  • allows you to change the listening port to avoid using port 3389 by default, thus reducing the risk of automated attacks targeting this port.
  • This file contains several customizable options: Change the port by modifying the directiveport=3389
  • , for example port=3390. Customize the login screen appearance with colors, a welcome message, or a background image.

Define user access rights based on their groups.

A second key file is

`/etc/xrdp/sesman.ini`, which controls strict access rules: Restrict logins to certain users using the directive `TerminalServerUsers=tsusers`.

Prohibit direct login by the root user by setting `AllowRootLogin=false`.

  • Manage the maximum number of simultaneous sessions and the maximum duration of an idle session.It is recommended to create a dedicated group to better control who can access the xRDP service: `sudo groupadd tsusers` `sudo adduser your_user tsusers``sudo systemctl restart xrdp`
  • Many organizations and administrators use these settings to restrict access and increase security, especially in critical or multi-user environments.
  • To enhance security, also use custom SSL/TLS certificates, as xRDP defaults to self-signed certificates (ssl-cert-snakeoil.key files), accessible only to members of the ssl-cert group.

Accessing the logs is a valuable source of information; you can find them in: /var/log/xrdp.log

  • and /var/log/xrdp-sesman.log
  • . Keep an eye on these files during debugging or to monitor for intrusion attempts. Adapting the configuration also provides a better user experience based on available system resources.These advanced options make xRDP a flexible and modular solution, perfectly suited to the current needs of Linux servers running Debian. They are part of a comprehensive approach to mastering the RDP protocol when using this tool in professional or development environments.

Using the Remmina RDP Client to Connect to Debian 13: A Step-by-Step Guide

  1. On the client side, several solutions are available for connecting to an xRDP server. On Linux, one of the most popular tools is Remmina, a lightweight, universal client that supports RDP, VNC, NX, and several other protocols. Its intuitive interface makes it easy to connect to Debian 13 via the RDP protocol configured with xRDP.
  3. Here's a detailed walkthrough for connecting from a Linux machine using Remmina:

Install Remmina with the command:

sudo apt install remmina remmina-plugin-rdp


  • Launch Remmina and create a new connection. Choose the RDP protocol from the dropdown list. Enter the IP address of the Debian 13 machine you want to control.Enter your Linux username and password when prompted to connect.
  • Confirm and wait for the remote session to open. Remmina offers advanced options such as printer redirection and local storage.
  • Profile management allows you to save multiple connections, simplifying daily tasks.

Performance is adjustable, allowing you to optimize bandwidth according to the network context.

Remmina’s broad compatibility is a real advantage for mixed users, especially those working with Windows, macOS, and various GNU/Linux systems. This client allows you to fully benefit from the advantages of the xRDP implementation and guarantees an experience close to native local access.

For those who want to explore other options, popular RDP clients such as FreeRDP or clients for macOS and Android are also fully compatible with xRDP on Debian. https://www.youtube.com/watch?v=SfsMpi3OGVk

Troubleshooting common xRDP connection errors and advanced tips

  1. Setting up xRDP on Debian 13 is generally easy, but sometimes errors can block the connection or cause unexpected behavior. Here are some common situations and their solutions: Black or blue screen after connection:This problem often occurs when a user session is already open locally on the remote computer. The solution is to close this local session before attempting an RDP connection. Alternatively, you can configure xRDP to create independent sessions.
  2. Port 3389 is already in use:
  3. Be sure to identify the conflicting service with
  4. `ss -tulpn | grep 3389`
  5. . It is possible to change the listening port in
  6. `/etc/xrdp/xrdp.ini`
  • .
  • Constant requests for administrator authentication:

On Debian 13, the PolKit component can cause these requests to be repeated during device management or updates. Creating a custom rule in

/etc/polkit-1/localauthority.conf.d/02-allow-colord.conf solves this problem: polkit.addRule(function(action, subject) { if ((action.id == “org.freedesktop.color-manager.create-device” || action.id == “org.freedesktop.color-manager.modify-profile” ||

action.id == “org.freedesktop.packagekit.system-sources-refresh”) &&

subject.isInGroup(“{users}”)) {

return polkit.Result.YES;

  • }
  • }); Simply save this file without restarting the xRDP service to see the improvement on the next connection. Furthermore, monitoring the logs in /var/log/xrdp.logand
  • /var/log/xrdp-sesman.log can provide valuable clues in case of failure or to fine-tune the configuration. In addition to these points, here is a quick list of common errors and their solutions:
Connection rejected with "access refused" message: check the user's membership in the authorized group.
  Session disconnected after a few minutes: adjust the parameters of
       MaxSessions
       and
      DisconnectedTimeLimite
    . Access denied for root if
  AllowRootLogin
is disabled; caution is advised regarding security.

To delve deeper into managing RDP connections on Linux, work on projects like XRDP Team continues to improve performance and security in recent Debian releases. This overview helps you grasp the intricacies of using xRDP and encourages you to explore alternatives such as using Rocky Linux

if your target environment is more enterprise-oriented, or to consult lists of Linux application releases for 2025—a smart way to stay informed about open-source software developments.